Open-iSCSI rtslib-fb through 2.1.72 has weak permissions for /etc/target/saveconfig.json because shutil.copyfile (instead of shutil.copy) is used, and thus permissions are not preserved.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| rtslib-fb(PyPI) | 0 | 2.1.73 | N/A |
CVSS Metrics
